Wanted: A mission driven candidate with an Information Assurance Certificationand an active secret clearance to be our next Information System Security Managersupporting NAVSEA PMS 443 in Washington, DC,
As an Information System Security Manager you will:
- Telecommute during the National Emergency period.
- Act as Information System Security Manager for NAVSEA client SEA 21/PMS 443. Assist Navy Organization with Software and Information Technology (IT) efforts related to surface ship readiness and Information Assurance (IA) accreditation.
- Work with a team of driven, supportive and highly skilled professionals.
- Receive a robust benefits package that includes an Employee Stock Ownership Plan!
- Be part of an empowered accountability culture where each employee-owner has a meaningful stake in the future success and growth of the company.
A week in the life of an Information System Security Manager:
- Conduct Assessment and Authorization (A&A) and Certification and Accreditation (C&A) activities through the Risk Management Framework (RMF) for Defense Business Systems, Research, Development, Test and Evaluation (RDT&E), and Platform Information Technology (PIT) ISs and networks within Navy Enterprise Mission Assurance Support Services (eMASS) or its successor, in accordance with current DoD, DON, and NAVSEA policies.
- Conduct in-depth technical reviews of A&A and C&A documentation from NAVSEA Program Executive Offices (PEOs) and field activities seeking authorization and/or accreditation from the Navy Authorizing Official (NAO) or the Functional Authorizing Official (FAO) in accordance with appropriate policies and procedures.
- Develop recommendations for corrective actions and/or courses of action. This includes, but is not limited to, recommendations on the following: validating test procedures, validating artifacts, validating plans and procedures, compliance status, validating tests, and validating results/repots and supporting documentation.
- Additional responsibilities:
- Assist Surface Ship Readiness (PMS 443), and liaison with SEA 21 and NAVSEA field activities in preparing their A&A and/or C&A documentation for submission to the NAO/FAO. Schedule and facilitate collaboration meetings between the Security Controls Assessor (SCA), NAVSEA Echelon II representatives, and appropriate program offices, Warfare Centers and Engineering Agents
- Assist in executing Cyber Security Assistance Visits at various NAVSEA activities with focus on the A&A and C&A efforts of the activity being assisted.
- Maintain the Department of Defense Information Technology Portfolio Repository – Department of the Navy (DITPR-DON) database, used to record the present status of all NAVY IT systems.
- Assist the Cyber PM, Warfare centers and engineering agents in the implementation and execution of DOD and DON cyber directives and policy and directives and policies.
- Provide reports as required such as, but not limited to, weekly metrics regarding A&A packages, risk metrics and data calls.
THIS POSITION IS AUTHORIZED TO TELECOMMUTE DURING THE NATIONAL EMERGENCY PERIOD
Founded in 1975, AMERICAN SYSTEMS is one of the largest employee-owned companies in the United States. We are a government services contractor focused on delivering Strategic Solutions to complex national priority programs with 100+ locations worldwide. Our employee-owners are encouraged to make a difference, implement new ideas in a collaborative environment, and focus on mission critical success. Through our focus on quality, strong cultural beliefs and innovation we deliver excellence every day.
AWARDED “BEST OF THE BEST” by U.S. Veterans Magazine, “BEST FOR VETS” by Military Times, and “TOP 10 MILITARY FRIENDLY EMPLOYER” by MilitaryFriendly.com
- Bachelor’s degree in Information Assurance, Computer Science or a related field plus 5-8 years of directly related experience.
- Educational requirements may be adjusted or waived for applicable work experience and / or CISSP certification.
- Working knowledge of Enterprise Mission Assurance Support Service (eMASS) and Risk Management Framework (RMF) and ability to assess security controls is required.
- A base Information Assurance Certification is required in one or all of the following: CISSP, CISM, CAP, or GSLC.
Knowledge, Skills and Abilities
- Ability to communicate effectively and clearly present technical approaches and findings.
- Ability to apply technical expertise and may have knowledge of other related disciplines.
- to work effectively in a diverse work group.
- Excellent written and verbal communication skills.